Solved

SSL Certificate not shown when RWW - SBS 2011

Posted on 2013-02-07
6
851 Views
Last Modified: 2013-03-11
Hi All.

Can anyone please thow some light on this issue.

I have supplied our client with an SSL certifcate for RWW from GoDaddy (Not the very expensive sort!) and I believe I have installed it on the SBS2011 box - but when you remote connect to the RWW externally - it still shows as 'a problem with this website's security certificate' and is still showing the certificate as a 'self signed'

We did the same process on our clients server as we did on our own sbs2011 server except our DOES show the correct SSL certifcate as issued by Godaddy.

We installed the certificate via the SBS2011 standard console going to 'Network - Connectivity - ADD A TRUSTED CERTIFICATE' - We requested a new certifcate and suppled the 'code' to Godaddy and once approved downloaded the certificates and continued to process the request on the SBS2011 console.

It told me the certificate was installed and shows 'Trusted'.

Does anyone know what I have done wrong here? - any help would be much appreciated.

Thank you
Regards
Andy
0
Comment
Question by:AndyKeen
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
6 Comments
 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 38864672
If you open the Certificates snap-in on the server, do you see the GoDaddy certificate listed under Personal/Certificates?  If not, I'd recommend going back to GoDaddy and follow their standard steps for installing the certificate and see if that fixes the issue.
0
 
LVL 1

Author Comment

by:AndyKeen
ID: 38865074
Hi Hypercat.

Thank you for your feedback.

I am at my clients tomorrow morning, so I will update you when I have attended. In the meantime I will check this out on our own server.

Thank you and Regards
Andy
0
 
LVL 1

Author Comment

by:AndyKeen
ID: 38867488
Hi.

At my clients now and still having the same problem.

I have again downloaded the SSL certificate from Go-Daddy (The CA) and installed on their SBS2011 server.

The server management screen shows the certificate as trusted - but when you use the GoDaddy SSL tool to check certificate validation it comes up with:

Results:SSL is Issued by an Unsupported CA..

and when you log-on remotely the certificate being used is still from the SBS as a self cert.

Do we need to remove the self signed SSL?

This organisation has a Firewall installed at the front a CheckPoint - Safe@Office 425W

could this have something to do with the issue.

Any further help would be much appreciated.
Regards
Andy
0
Efficient way to get backups off site to Azure

This user guide provides instructions on how to deploy and configure both a StoneFly Scale Out NAS Enterprise Cloud Drive virtual machine and Veeam Cloud Connect in the Microsoft Azure Cloud.

 
LVL 38

Expert Comment

by:Hypercat (Deb)
ID: 38876219
What type of certificate is it (i.e., Standard or Premium, single or multi domain)?  Did you install this certificate  for use with OWA, or did you leave Exchange set up to use a self-signed certificate?  I'm thinking that if you got a standard, single domain certificate, and you installed it only for the website itself, then the warning messages you're getting might actually be coming from Exchange, due to the fact that OWA is still using a self-signed certificate. I have to be honest and say that I don't remember the standard SBS 2011 procedure for installing these certificates. But I do know that in a standard Exchange 2010 environment the certificate needs to be installed using the Exchange wizard in order to work properly for OWA.

As long as HTTPS (port 443) is allowed incoming through your firewall, there should be no problem on that score.
0
 
LVL 1

Accepted Solution

by:
AndyKeen earned 0 total points
ID: 38958600
The solution to this issue was to install the SSL certificate on the forefront server box.
0
 
LVL 1

Author Closing Comment

by:AndyKeen
ID: 38972923
No solution provided was the correct answer - so I had to resolve the problem myself through trial and error
0

Featured Post

Free learning courses: Active Directory Deep Dive

Get a firm grasp on your IT environment when you learn Active Directory best practices with Veeam! Watch all, or choose any amount, of this three-part webinar series to improve your skills. From the basics to virtualization and backup, we got you covered.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

What is an ISAPI filter?   •      It's an assembly (.dll file) that can add or change the way IIS works.   •      They can be enabled globally for your web server or on a site-by-site basis.   When the IIS server receives a request, enabling the ISAPI fi…
Debug Tools to analyse IIS process: This article focus on taking memory dumps from IIS to determine which code is taking more time and to analyse which calls hangs/causes more CPU usage. To take dumps,download the following. Install1: To st…
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
Michael from AdRem Software outlines event notifications and Automatic Corrective Actions in network monitoring. Automatic Corrective Actions are scripts, which can automatically run upon discovery of a certain undesirable condition in your network.…

734 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question